Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
f5F5F5:K45143221
HistoryDec 17, 2020 - 12:00 a.m.

K45143221 : BIG-IP AVRD vulnerability CVE-2020-27728

2020-12-1700:00:00
my.f5.com
10
avrd
big-ip
vulnerability
denial-of-service
mobile device
bot defense
core file
restart
statistics
big-iq
external log server

EPSS

0.001

Percentile

42.5%

JSON

Security Advisory Description

Under certain conditions, Analytics, Visibility, and Reporting daemon (AVRD) may generate a core file and restart on the BIG-IP system when processing requests sent from mobile devices. (CVE-2020-27728)

Impact

This may allow an attacker to initiate a denial-of-service (DoS) attack on the AVRD process on the BIG-IP system from a mobile device. This vulnerability occurs when all of the following conditions are met:

  • Mobile SDK is licensed and enabled.
  • An app using Mobile SDK on certain mobile devices sends a request to a virtual server with a Bot Defense profile.
  • The AVRD process sends the statistics to a BIG-IQ system or any external log server.

Related

nvd 1
prion 1
nessus 1
cvelist 1
cve 1
nvd
nvd
CVE-2020-27728
2020-12-24 16:15:15
prion
prion
Improper access control
2020-12-24 16:15:00
nessus
nessus
F5 Networks BIG-IP : BIG-IP AVRD vulnerability (K45143221)
2020-12-17 00:00:00
cvelist
cvelist
CVE-2020-27728
2020-12-24 15:33:32
cve
cve
CVE-2020-27728
2020-12-24 16:15:15

EPSS

0.001

Percentile

42.5%

JSON
Related for F5:K45143221
nvd1prion1nessus1cvelist1cve1